I am planning to use following ExtraHop REST API to retrieve Alerts:https:///api/v1/alertsEach time i call this API it gives me all Alerts in system.Is there any option to provide filter parameters in there so that i only get alerts raised after my previous poll ?
We don't have support for programmatically querying the alert history. You can get alerts pushed to a system of your choosing by adding a trigger on the ALERT_RECORD_COMMIT trigger event.
Thanks for your response . We are now able to push Alerts configured URL. The issue is that there are some attributes i am not getting for example severity, Alert Type are one of the most important.
We don't currently expose that information in the API. You can add key-value pairs to your description and parse them out in ALERT_RECORD_COMMIT to send to the target.